IBM Engineering Lifecycle Optimization信息泄露漏洞

IBM Engineering Lifecycle Optimization (ELO) is an extension of the Engineering Lifecycle Management (ELM) product portfolio from IBM USA. They make it easier to collect and analyze data from across the development environment to make better decisions. Automate reporting to ensure the entire organization has the information it needs to optimize development, define processes that can help your extension team adopt and follow best practices, and interface with third-party tools to customize your development environment. IBM Engineering Lifecycle Optimization has an information disclosure vulnerability that stems from HTTP GET requests that output too much sensitive information, and an authenticated attacker could obtain highly sensitive information via HTTP GET requests.